Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/cuAqOYh3eYirNHA5-f18FH8Y0N4.roa
File: cuAqOYh3eYirNHA5-f18FH8Y0N4.roa (raw, json)
Hash identifier: JsC7j6aNgYLinA7xzTzOuIp6VL5qKJJunqaoQVMlLlo=
Subject key identifier: 72:E0:2A:39:88:77:79:88:AB:34:70:39:F9:FD:7C:14:7F:18:D0:DE
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 387D3E29
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/cuAqOYh3eYirNHA5-f18FH8Y0N4.roa
Signing time: Sun 08 May 2022 02:22:36 +0000
ROA not before: Sun 08 May 2022 02:22:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 31.222.204.0/23 maxlen: 23
31.222.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 947732009 (0x387d3e29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: May 8 02:22:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72e02a3988777988ab347039f9fd7c147f18d0de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b4:fb:af:88:af:ca:24:9d:76:d7:b2:8d:8a:
57:d2:3b:f3:00:1a:27:f3:54:8e:85:c2:1c:fc:30:
ec:f5:cd:8a:29:c8:6f:21:8d:42:f2:b3:40:d4:49:
03:07:64:40:7f:b8:35:96:85:b5:e3:d5:18:76:80:
87:98:a9:1c:44:fd:3d:bb:00:8a:ef:9d:ec:92:29:
60:f2:cf:62:b1:16:bf:86:a0:ea:c3:8e:a4:6a:e0:
ba:49:3a:3d:ea:7a:5d:52:37:3f:d0:f3:7d:95:b3:
5b:fc:90:5e:c4:65:91:bf:80:5b:71:6b:59:06:2c:
76:58:d8:ec:ce:03:7d:b2:eb:43:25:9c:2f:6d:3f:
b2:11:36:48:64:37:58:92:c2:a8:78:0d:ef:56:62:
08:6f:36:82:54:4d:0d:ad:19:50:af:93:f8:11:e1:
f4:f5:b9:ba:91:2c:dd:95:17:2c:3a:2f:31:76:da:
2f:dc:9f:dd:c5:1c:38:be:b7:81:53:56:f9:ef:d7:
0e:38:9c:c7:99:25:9f:87:4b:85:d2:e5:fc:78:26:
64:b7:85:78:bd:89:ec:b1:52:0e:57:1d:d9:0f:44:
9e:fb:36:96:ab:cd:3f:7e:c1:a4:05:ae:10:53:ab:
3e:16:91:f5:cf:37:31:aa:12:53:0a:d7:6c:ed:55:
d2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E0:2A:39:88:77:79:88:AB:34:70:39:F9:FD:7C:14:7F:18:D0:DE
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/cuAqOYh3eYirNHA5-f18FH8Y0N4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.204.0/22
Signature Algorithm: sha256WithRSAEncryption
61:5b:e0:2c:d7:3a:34:03:95:41:13:b0:40:b8:0d:92:17:e8:
1f:a5:15:83:81:ce:7c:9a:44:33:13:08:05:2e:80:85:7c:2c:
3c:df:c9:85:61:1d:86:cf:98:5b:95:30:b1:b2:c9:cb:82:89:
c6:97:f6:e3:ce:b9:c7:2a:65:60:5a:66:1b:0a:ca:ef:08:15:
38:69:e5:bd:f3:ae:b4:e7:76:7b:3c:0d:bc:6b:7c:cb:78:94:
2b:f6:0e:62:3d:d0:c7:5b:17:56:cd:aa:39:48:37:24:ea:ec:
c3:66:66:1d:36:92:0e:6a:a5:5d:9e:cf:06:d7:4c:af:40:67:
00:49:41:fe:a6:58:d7:ee:76:72:99:5b:65:05:fe:33:c0:32:
2c:e2:b5:6d:83:fa:70:7f:4a:1f:3f:9a:bd:69:5a:f0:9f:53:
58:df:72:4f:cf:91:4c:c4:66:e2:9f:f6:33:33:c8:66:c8:73:
1c:d7:4f:9c:86:b6:a5:9b:6b:e9:ed:4f:bd:9e:8f:f9:82:c6:
bc:40:af:12:59:42:5b:90:41:77:64:03:de:46:04:d2:f7:68:
17:f5:7a:5d:22:b5:e3:62:ab:da:bf:92:62:c4:0c:af:81:d0:
45:d3:96:34:e8:48:dd:74:3c:da:90:13:f9:65:30:af:4a:bd:
0b:cd:5d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org